CVE-2026-5590 | zephyrproject-rtos Zephyr up to 4.3 TCP Connection tcp_recv null pointer dereference (GHSA-4vqm-pw24-g9jp)

Inserito da Angelo Barbosa | Apr 5, 2026 | CVE

A vulnerability labeled as problematic has been found in zephyrproject-rtos Zephyr up to 4.3. This impacts the function tcp_recv of the component TCP Connection Handler. The manipulation results in null pointer dereference.

This vulnerability is identified as CVE-2026-5590. The attack can be executed remotely. There is not any exploit available.

CVE-2026-5590 | zephyrproject-rtos Zephyr up to 4.3 TCP Connection tcp_recv null pointer dereference (GHSA-4vqm-pw24-g9jp)

Post correlati

CVE-2025-3012 | Unisoc T8100/T9100/T8200/T8300 dpc Modem null pointer dereference

CVE-2025-7154 | TOTOLINK N200RE 9.3.5u.6095_B20200916/9.3.5u.6139_B20201216 /cgi-bin/cstecgi.cgi sub_41A0F8 Hostname os command injection

CVE-2025-27135 | infiniflow ragflow up to 0.15.1 ExeSQL sql injection (GHSA-3gqj-66qm-25jq)

CVE-2025-23844 | wellwisher Custom Widget Classes Plugin up to 1.1 on WordPress cross-site request forgery